$ rpki-client -vvf rpki.cnnic.cn/rpki/A9162E3D0000/577/oZXOlTYUvMzfy6X1qyr5BfgHsi4.roa File: oZXOlTYUvMzfy6X1qyr5BfgHsi4.roa (raw, json) Hash identifier: +vy9TzWIy7u4mRtaKycMR0XelY2O/sz0O/Ut8le+I0c= Subject key identifier: A1:95:CE:95:36:14:BC:CC:DF:CB:A5:F5:AB:2A:F9:05:F8:07:B2:2E Certificate issuer: /CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Certificate serial: 1E16 Authority key identifier: 75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 Authority info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer Subject info access: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/oZXOlTYUvMzfy6X1qyr5BfgHsi4.roa Signing time: Sat 13 Sep 2025 03:04:50 +0000 ROA not before: Sat 13 Sep 2025 03:04:50 +0000 ROA not after: Mon 03 Aug 2026 08:44:40 +0000 asID: 138527 IP address blocks: 103.220.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.mft rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.crl rsync://rpki.cnnic.cn/rpki/A9162E3D0000/BBYptqnqt8sTJOo5ePA3lviJtUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BBYptqnqt8sTJOo5ePA3lviJtUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 13:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7702 (0x1e16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75B4714C4F61BEA04A02CF9CF563AE134F479C85 Validity Not Before: Sep 13 03:04:50 2025 GMT Not After : Aug 3 08:44:40 2026 GMT Subject: CN=A195CE953614BCCCDFCBA5F5AB2AF905F807B22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:26:de:6e:1e:59:8f:4b:4e:f5:d2:6b:42: 02:95:f2:8e:5b:c7:8e:b3:56:35:81:d8:0b:f0:07: af:a7:3d:88:3a:71:45:b2:b1:3f:13:d8:ef:ea:58: 1d:17:5f:31:ef:8f:c7:88:3e:3b:aa:32:ec:74:1a: 10:72:25:cd:0c:ee:c0:a4:ae:57:fa:0d:4c:ec:1c: 46:c3:a0:6b:56:f2:43:4d:98:31:06:d3:3b:45:89: ca:91:f4:c9:dc:b4:8e:91:41:21:1d:a8:29:df:46: 51:fc:14:ba:35:e2:2e:40:e0:85:28:cb:45:81:ce: a5:e9:54:66:34:ca:78:9e:45:91:4a:6d:fc:26:e9: fd:75:16:d9:e0:90:cc:4e:4f:f0:a6:56:90:1a:c6: a8:56:21:1e:d3:c3:ba:4f:e3:58:31:0a:a4:e2:02: a1:da:ce:37:52:fa:c6:a9:5c:36:43:7b:12:c5:7d: 1e:14:6a:19:6b:56:58:45:ef:10:31:80:c3:6f:2b: df:cb:9e:d1:5a:c1:14:3f:e8:54:7b:f3:ba:60:1c: 8e:51:45:ab:bd:f7:68:4d:9f:b6:85:0f:26:b3:ac: 31:db:f3:9c:ec:94:2b:89:40:ce:52:54:4f:e9:c5: c4:fa:dd:ff:4e:05:ad:4c:d7:7c:0b:55:ef:30:e6: f3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:95:CE:95:36:14:BC:CC:DF:CB:A5:F5:AB:2A:F9:05:F8:07:B2:2E X509v3 Authority Key Identifier: keyid:75:B4:71:4C:4F:61:BE:A0:4A:02:CF:9C:F5:63:AE:13:4F:47:9C:85 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/dbRxTE9hvqBKAs-c9WOuE09HnIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/dbRxTE9hvqBKAs-c9WOuE09HnIU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki.cnnic.cn/rpki/A9162E3D0000/577/oZXOlTYUvMzfy6X1qyr5BfgHsi4.roa RPKI Notify - URI:https://rpki.cnnic.cn/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.248.0/22 Signature Algorithm: sha256WithRSAEncryption c1:45:0e:94:3f:0a:16:b5:6a:7d:ef:2a:82:bb:09:03:6d:d7: 19:85:19:39:15:54:ea:17:b2:d9:3f:85:70:37:bf:ec:a7:4f: 8a:38:d8:e4:0a:a5:69:d5:86:0a:5f:ce:aa:88:b0:60:aa:31: eb:49:a4:07:50:76:5d:d5:cf:bd:f0:8b:73:75:d0:10:b6:dc: 94:be:9b:75:e0:26:5b:ab:f6:18:a8:0a:d1:73:dd:dc:f7:1a: bb:cf:62:e3:da:b7:ba:5e:48:af:6e:96:d2:e9:05:71:fc:9c: 71:c7:c2:a3:8d:cc:7f:8a:23:18:6e:a6:92:da:77:aa:15:28: 47:e8:72:3c:62:ab:f0:74:2c:bc:e4:77:8d:15:6f:d9:75:42: 9c:69:72:9d:4c:fc:bf:2d:16:15:9b:d2:d7:bb:09:a8:31:56: ed:ad:e2:ce:e2:16:1e:69:7c:27:c0:cc:3e:40:85:67:47:5c: b4:0e:1c:89:48:57:06:81:61:b3:7e:c6:bf:ff:43:10:e1:0e: a7:a8:60:e0:f1:5d:cc:70:9a:6a:69:ef:5a:4b:30:45:4d:11: 74:57:1c:12:1a:7e:bd:08:be:d9:a4:6e:22:4e:d2:ef:6c:6e: 18:c6:3e:d4:3b:28:85:b0:f8:85:ce:3b:b0:a2:11:14:2f:60: e4:fb:dc:cb -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICHhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC NDcxNEM0RjYxQkVBMDRBMDJDRjlDRjU2M0FFMTM0RjQ3OUM4NTAeFw0yNTA5MTMw MzA0NTBaFw0yNjA4MDMwODQ0NDBaMDMxMTAvBgNVBAMTKEExOTVDRTk1MzYxNEJD Q0NERkNCQTVGNUFCMkFGOTA1RjgwN0IyMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDTSbebh5Zj0tO9dJrQgKV8o5bx46zVjWB2AvwB6+nPYg6cUWy sT8T2O/qWB0XXzHvj8eIPjuqMux0GhByJc0M7sCkrlf6DUzsHEbDoGtW8kNNmDEG 0ztFicqR9MnctI6RQSEdqCnfRlH8FLo14i5A4IUoy0WBzqXpVGY0ynieRZFKbfwm 6f11FtngkMxOT/CmVpAaxqhWIR7Tw7pP41gxCqTiAqHazjdS+sapXDZDexLFfR4U ahlrVlhF7xAxgMNvK9/LntFawRQ/6FR787pgHI5RRau992hNn7aFDyazrDHb85zs lCuJQM5SVE/pxcT63f9OBa1M13wLVe8w5vNlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUoZXOlTYUvMzfy6X1qyr5BfgHsi4wHwYDVR0jBBgwFoAUdbRxTE9hvqBKAs+c 9WOuE09HnIUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3 L2RiUnhURTlodnFCS0FzLWM5V091RTA5SG5JVS5jcmwwYwYIKwYBBQUHAQEEVzBV MFMGCCsGAQUFBzAChkdyc3luYzovL3Jwa2kuY25uaWMuY24vcnBraS9BOTE2MkUz RDAwMDAvZGJSeFRFOWh2cUJLQXMtYzlXT3VFMDlIbklVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jw a2kuY25uaWMuY24vcnBraS9BOTE2MkUzRDAwMDAvNTc3L29aWE9sVFlVdk16Znk2 WDFxeXI1QmZnSHNpNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnBraS5jbm5p Yy5jbi9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn3PgwDQYJKoZIhvcNAQELBQADggEBAMFFDpQ/Cha1an3vKoK7CQNt1xmFGTkV VOoXstk/hXA3v+ynT4o42OQKpWnVhgpfzqqIsGCqMetJpAdQdl3Vz73wi3N10BC2 3JS+m3XgJlur9hioCtFz3dz3GrvPYuPat7peSK9ultLpBXH8nHHHwqONzH+KIxhu ppLad6oVKEfocjxiq/B0LLzkd40Vb9l1Qpxpcp1M/L8tFhWb0te7CagxVu2t4s7i Fh5pfCfAzD5AhWdHXLQOHIlIVwaBYbN+xr//QxDhDqeoYODxXcxwmmpp71pLMEVN EXRXHBIafr0IvtmkbiJO0u9sbhjGPtQ7KIWw+IXOO7CiERQvYOT73Ms= -----END CERTIFICATE-----Generated at Mon Oct 20 13:30:51 2025 by rpki-client